News

Update your OpenWrt router! Security issue made supply chain attack possible

Don't miss, embedded systems, Hot stuff, Linux, networking, News, open source, OpenWRT, router, security update, vulnerability /

Update your OpenWrt router! Security issue made supply chain attack possible 2024-12-09 at 20:51 By Zeljka Zorz A security issue that could have allowed attackers to serve malicious firmware images to users has been fixed by OpenWrt Project, the organization that helms the development of the popular Linux distribution for embedded devices. About OpenWrt OpenWrt […]

React to this headline:

Loading spinner

Update your OpenWrt router! Security issue made supply chain attack possible Read More »

Microsoft: “Hack” this LLM-powered service and get paid

Don't miss, hacking contest, Hot stuff, LLMs, Microsoft, News, prompt injection /

Microsoft: “Hack” this LLM-powered service and get paid 2024-12-09 at 18:04 By Zeljka Zorz Microsoft, in collaboration with the Institute of Science and Technology Australia and ETH Zurich, has announced the LLMail-Inject Challenge, a competition to test and improve defenses against prompt injection attacks. The setup and the challenge LLMail is a simulated email client

React to this headline:

Loading spinner

Microsoft: “Hack” this LLM-powered service and get paid Read More »

8Base hacked port operating company Luka Rijeka

data theft, Don't miss, EU, Europe, extortion, Hot stuff, maritime industry, News, Ransomware /

8Base hacked port operating company Luka Rijeka 2024-12-09 at 14:48 By Zeljka Zorz Luka Rijeka, a company that offers maritime transport, port, storage of goods and forwarding services in Rijeka, Croatia, has been hacked by the 8Base ransomware group. The group claimed the attack on their dark web data leak site and professed that they’ve

React to this headline:

Loading spinner

8Base hacked port operating company Luka Rijeka Read More »

TPM 2.0: The new standard for secure firmware

News, security standard, standards, Trusted Computing Group /

TPM 2.0: The new standard for secure firmware 2024-12-09 at 09:48 By Help Net Security Connected devices are better protected from cyberattacks and less likely to be compromised by errors thanks to the new TPM 2.0 specification from the Trusted Computing Group (TCG). Manufacturers attach a Trusted Platform Module (TPM) to a device to help

React to this headline:

Loading spinner

TPM 2.0: The new standard for secure firmware Read More »

Who handles what? Common misconceptions about SaaS security responsibilities

Cloud, cybersecurity, Don't miss, Features, Guidewire, Hot stuff, identity management, Incident Response, News, opinion, SaaS /

Who handles what? Common misconceptions about SaaS security responsibilities 2024-12-09 at 07:33 By Mirko Zorz In this Help Net Security interview, James Dolph, CISO at Guidewire, addresses common misconceptions about security responsibilities in cloud environments, particularly in SaaS, and how these misunderstandings can lead to security risks. What common misconceptions do you encounter about the

React to this headline:

Loading spinner

Who handles what? Common misconceptions about SaaS security responsibilities Read More »

Top cybersecurity books for your holiday gift list

books, cybersecurity, News /

Top cybersecurity books for your holiday gift list 2024-12-09 at 06:48 By Help Net Security The holiday season is approaching, and with it, the tradition of gift-giving. For professionals and enthusiasts alike, a well-chosen book can provide both knowledge and inspiration. To help with ideas on what to give, we’ve compiled a list of cybersecurity

React to this headline:

Loading spinner

Top cybersecurity books for your holiday gift list Read More »

Businesses plagued by constant stream of malicious emails

cybercrime, cybersecurity, email security, Hornetsecurity, News, phishing, report, survey /

Businesses plagued by constant stream of malicious emails 2024-12-09 at 06:03 By Help Net Security 36.9% of all emails received by businesses (20.5 billion) in 2024 were unwanted, according to Hornetsecurity’s analysis of 55.6+ billion emails processed through their security services between November 1, 2023 and October 31, 2024 – and 2.3% of those contained

React to this headline:

Loading spinner

Businesses plagued by constant stream of malicious emails Read More »

Week in review: Veeam Service Provider Console flaws fixed, Patch Tuesday forecast

News, Week in review /

Week in review: Veeam Service Provider Console flaws fixed, Patch Tuesday forecast 2024-12-08 at 11:03 By Help Net Security Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Veeam plugs serious holes in Service Provider Console (CVE-2024-42448, CVE-2024-42449) Veeam has fixed two vulnerabilities in Veeam Service Provider Console (VSPC),

React to this headline:

Loading spinner

Week in review: Veeam Service Provider Console flaws fixed, Patch Tuesday forecast Read More »

Resecurity introduces AI-powered GSOC at NATO Edge 2024

Artificial Intelligence, cybersecurity, Don't miss, Government, News, Resecurity, SOC, Virtual Reality /

Resecurity introduces AI-powered GSOC at NATO Edge 2024 2024-12-06 at 15:03 By Help Net Security Resecurity, a global leader in cybersecurity solutions, unveiled its advanced Government Security Operations Center (GSOC) during NATO Edge 2024, the NATO Communications and Information Agency’s flagship conference. This year’s event, held from December 3 to 5, emphasized emerging technologies in

React to this headline:

Loading spinner

Resecurity introduces AI-powered GSOC at NATO Edge 2024 Read More »

Windows, macOS users targeted with crypto-and-info-stealing malware

Artificial Intelligence, Cado Security, Cryptocurrency, Don't miss, Hot stuff, macOS, Malware, News, social engineering, video conferencing, Windows /

Windows, macOS users targeted with crypto-and-info-stealing malware 2024-12-06 at 14:05 By Zeljka Zorz Downloading anything from the internet is a gamble these days: you might think that you are downloading an innocuous app from a legitimate firm but thanks to clever misuse of AI and some social engineering, you can end up with information and

React to this headline:

Loading spinner

Windows, macOS users targeted with crypto-and-info-stealing malware Read More »

How to choose secure, verifiable technologies?

ACSC, CISA, Don't miss, enterprise, guidelines, hardware, IoT, MSP, NCSC, News, procurement, risk assessment, SaaS, software /

How to choose secure, verifiable technologies? 2024-12-06 at 12:16 By Zeljka Zorz The Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC) has published a guidance document titled Choosing Secure and Verifiable Technologies, compiled to assist organizations in making informed decisions when procuring software (proprietary or open source), hardware (e.g., IoT devices), and cloud services

React to this headline:

Loading spinner

How to choose secure, verifiable technologies? Read More »

December 2024 Patch Tuesday forecast: The secure future initiative impact

Adobe, Don't miss, Expert analysis, Hot stuff, Microsoft, Mozilla, News, opinion, Patch Tuesday, predictions, Windows /

December 2024 Patch Tuesday forecast: The secure future initiative impact 2024-12-06 at 08:04 By Help Net Security It seems like 2024 just started, but the final Patch Tuesday of the year is almost here! In retrospect, it has been a busy year with continued Windows 11 releases, the new Server 2025 release, and all the

React to this headline:

Loading spinner

December 2024 Patch Tuesday forecast: The secure future initiative impact Read More »

Teenagers leading new wave of cybercrime

cybercrime, data breach, Experian, News, report, survey /

Teenagers leading new wave of cybercrime 2024-12-06 at 07:42 By Help Net Security Global data breaches show no signs of slowing down as this year has already exceeded 2023 in the number of data breaches and consumers impacted, according to Experian. Younger cybercriminals on the rise Today, the world of cyber hacking is not confined

React to this headline:

Loading spinner

Teenagers leading new wave of cybercrime Read More »

Building a robust security posture with limited resources

Artificial Intelligence, automation, cybersecurity, Don't miss, Features, Hot stuff, Innovation, News, Ontinue, opinion, risk /

Building a robust security posture with limited resources 2024-12-06 at 07:03 By Mirko Zorz In this Help Net Security interview, Gareth Lindahl-Wise, CISO at Ontinue, discusses how business leaders can align innovation with cybersecurity, tackle the risks posed by legacy systems, and build defenses for startups. Lindahl-Wise also highlights collaboration and strategic planning as essential

React to this headline:

Loading spinner

Building a robust security posture with limited resources Read More »

GenAI makes phishing attacks more believable and cost-effective

Artificial Intelligence, cybersecurity, generative AI, Ivanti, News, report, survey /

GenAI makes phishing attacks more believable and cost-effective 2024-12-06 at 06:39 By Help Net Security GenAI is a powerful tool that can be used by security teams to protect organizations, however, it can also be used by malicious actors, making phishing-related attacks a growing and concerning threat vector, according to Ivanti. Ivanti’s research revealed that

React to this headline:

Loading spinner

GenAI makes phishing attacks more believable and cost-effective Read More »

New infosec products of the week: December 6, 2024

Datadog, Fortinet, News, Radiant Logic, Sweet Security, Tenable, Veza /

New infosec products of the week: December 6, 2024 2024-12-06 at 06:01 By Help Net Security Here’s a look at the most interesting products from the past week, featuring releases from Datadog, Fortinet, Radiant Logic, Sweet Security, Tenable, and Veza. FortiAppSec Cloud simplifies web application security management With FortiAppSec Cloud, customers have deep visibility and

React to this headline:

Loading spinner

New infosec products of the week: December 6, 2024 Read More »

Law enforcement shuts down Manson Market cybercrime marketplace

cybercrime, cybercriminals, Europe, Europol, Hot stuff, law enforcement, News, phishing, scams /

Law enforcement shuts down Manson Market cybercrime marketplace 2024-12-05 at 17:31 By Help Net Security Europol has supported the dismantling of a sophisticated criminal network responsible for facilitating large-scale online fraud. In an operation led by the Hanover Police Department (Polizeidirektion Hannover) and the Verden Public Prosecutor’s Office (Staatsanwaltschaft Verden) in Germany, and supported by

React to this headline:

Loading spinner

Law enforcement shuts down Manson Market cybercrime marketplace Read More »

Mitel MiCollab zero-day and PoC exploit unveiled

0-day, collaboration, CVE, Don't miss, enterprise, Hot stuff, Mitel, News, PoC, WatchTowr /

Mitel MiCollab zero-day and PoC exploit unveiled 2024-12-05 at 16:32 By Zeljka Zorz A zero-day vulnerability in the Mitel MiCollab enterprise collaboration suite can be exploited to read files containing sensitive data, watchTowr researcher Sonny Macdonald has disclosed, and followed up by releasing a proof-of-concept (PoC) exploit that chains together this zero-day file read vulnerability

React to this headline:

Loading spinner

Mitel MiCollab zero-day and PoC exploit unveiled Read More »

Trustwave Named a Major Player in IDC MarketScape: Worldwide Cloud Security Services in the AI Era 2024–2025 Vendor Assessment

Artificial Intelligence, Managed Detection and Response, Managed Security Services, News, Reports, Spotlights /

Trustwave Named a Major Player in IDC MarketScape: Worldwide Cloud Security Services in the AI Era 2024–2025 Vendor Assessment 2024-12-05 at 16:02 By IDC has positioned Trustwave as a Major Player in the just released IDC MarketScape Worldwide Cloud Security Services in the AI Era 2024–2025 Vendor Assessment (IDC #US52048124e, November 2024) for its comprehensive set of

React to this headline:

Loading spinner

Trustwave Named a Major Player in IDC MarketScape: Worldwide Cloud Security Services in the AI Era 2024–2025 Vendor Assessment Read More »

8+ US telcos compromised, FBI advises Americans to use encrypted communications

China, Don't miss, Encryption, Hot stuff, News, telecommunications, tips, USA /

8+ US telcos compromised, FBI advises Americans to use encrypted communications 2024-12-05 at 14:24 By Zeljka Zorz FBI and Cybersecurity and Infrastructure Security Agency (CISA) officials have advised Americans to use encrypted call and messaging apps to protect their communications from threat actors that have – and will – burrow into the networks and systems

React to this headline:

Loading spinner

8+ US telcos compromised, FBI advises Americans to use encrypted communications Read More »

Scroll to Top